trezor-agent/libagent/device/trezor.py

"""TREZOR-related code (see http://bitcointrezor.com/)."""

import binascii
import logging
import os
import sys

import semver

from . import interface

log = logging.getLogger(__name__)


class Trezor(interface.Device):
    """Connection to TREZOR device."""

    @property
    def _defs(self):
        from . import trezor_defs
        # Allow using TREZOR bridge transport (instead of the HID default)
        trezor_defs.Transport = {
            'bridge': trezor_defs.BridgeTransport,
        }.get(os.environ.get('TREZOR_TRANSPORT'), trezor_defs.HidTransport)
        return trezor_defs

    required_version = '>=1.4.0'
    passphrase = os.environ.get('TREZOR_PASSPHRASE', '')

    def connect(self):
        """Enumerate and connect to the first USB HID interface."""
        def passphrase_handler(_):
            log.debug('using %s passphrase for %s',
                      'non-empty' if self.passphrase else 'empty', self)
            return self._defs.PassphraseAck(passphrase=self.passphrase)

        def create_pin_handler(conn):
            if not sys.stdin.closed and os.isatty(sys.stdin.fileno()):
                return conn.callback_PinMatrixRequest  # CLI-based PIN handler

            def qt_handler(_):
                # pylint: disable=import-error
                from PyQt5.QtWidgets import QApplication, QInputDialog, QLineEdit
                label = ('Use the numeric keypad to describe number positions.\n'
                         'The layout is:\n'
                         '    7 8 9\n'
                         '    4 5 6\n'
                         '    1 2 3\n'
                         'Please enter PIN:')
                app = QApplication([])
                qd = QInputDialog()
                qd.setTextEchoMode(QLineEdit.Password)
                qd.setLabelText(label)
                qd.show()
                app.exec_()
                return self._defs.PinMatrixAck(pin=qd.textValue())

            return qt_handler

        for d in self._defs.Transport.enumerate():
            log.debug('endpoint: %s', d)
            transport = self._defs.Transport(d)
            connection = self._defs.Client(transport)
            connection.callback_PassphraseRequest = passphrase_handler
            connection.callback_PinMatrixRequest = create_pin_handler(connection)
            f = connection.features
            log.debug('connected to %s %s', self, f.device_id)
            log.debug('label    : %s', f.label)
            log.debug('vendor   : %s', f.vendor)
            current_version = '{}.{}.{}'.format(f.major_version,
                                                f.minor_version,
                                                f.patch_version)
            log.debug('version  : %s', current_version)
            log.debug('revision : %s', binascii.hexlify(f.revision))
            if not semver.match(current_version, self.required_version):
                fmt = ('Please upgrade your {} firmware to {} version'
                       ' (current: {})')
                raise ValueError(fmt.format(self, self.required_version,
                                            current_version))
            connection.ping(msg='', pin_protection=True)  # unlock PIN
            return connection
        raise interface.NotFoundError('{} not connected'.format(self))

    def close(self):
        """Close connection."""
        self.conn.close()

    def pubkey(self, identity, ecdh=False):
        """Return public key."""
        curve_name = identity.get_curve_name(ecdh=ecdh)
        log.debug('"%s" getting public key (%s) from %s',
                  identity.to_string(), curve_name, self)
        addr = identity.get_bip32_address(ecdh=ecdh)
        result = self.conn.get_public_node(n=addr,
                                           ecdsa_curve_name=curve_name)
        log.debug('result: %s', result)
        return result.node.public_key

    def _identity_proto(self, identity):
        result = self._defs.IdentityType()
        for name, value in identity.items():
            setattr(result, name, value)
        return result

    def sign(self, identity, blob):
        """Sign given blob and return the signature (as bytes)."""
        curve_name = identity.get_curve_name(ecdh=False)
        log.debug('"%s" signing %r (%s) on %s',
                  identity.to_string(), blob, curve_name, self)
        try:
            result = self.conn.sign_identity(
                identity=self._identity_proto(identity),
                challenge_hidden=blob,
                challenge_visual='',
                ecdsa_curve_name=curve_name)
            log.debug('result: %s', result)
            assert len(result.signature) == 65
            assert result.signature[:1] == b'\x00'
            return result.signature[1:]
        except self._defs.Error as e:
            msg = '{} error: {}'.format(self, e)
            log.debug(msg, exc_info=True)
            raise interface.DeviceError(msg)

    def ecdh(self, identity, pubkey):
        """Get shared session key using Elliptic Curve Diffie-Hellman."""
        curve_name = identity.get_curve_name(ecdh=True)
        log.debug('"%s" shared session key (%s) for %r from %s',
                  identity.to_string(), curve_name, pubkey, self)
        try:
            result = self.conn.get_ecdh_session_key(
                identity=self._identity_proto(identity),
                peer_public_key=pubkey,
                ecdsa_curve_name=curve_name)
            log.debug('result: %s', result)
            assert len(result.session_key) in {65, 33}  # NIST256 or Curve25519
            assert result.session_key[:1] == b'\x04'
            return result.session_key
        except self._defs.Error as e:
            msg = '{} error: {}'.format(self, e)
            log.debug(msg, exc_info=True)
            raise interface.DeviceError(msg)
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`"""TREZOR-related code (see http://bitcointrezor.com/)."""`

			`import binascii`
			`import logging`
device: set passphrase from environment 2017-01-06 10:44:58 +00:00			`import os`
pin: use PyQt only when running with no TTY 2017-05-21 18:03:04 +00:00			`import sys`
tox: order imports 2017-01-06 10:37:14 +00:00
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`import semver`

			`from . import interface`

			`log = logging.getLogger(__name__)`


			`class Trezor(interface.Device):`
			`"""Connection to TREZOR device."""`

device: import device-specific `defs` module lazily It may fail on unsupported platforms (e.g. keepkeylib does not supoprt Python 3) 2016-12-27 10:34:07 +00:00			`@property`
			`def _defs(self):`
			`from . import trezor_defs`
Allow using TREZOR bridge (instead of HID transport) 2017-04-21 18:25:46 +00:00			`# Allow using TREZOR bridge transport (instead of the HID default)`
			`trezor_defs.Transport = {`
			`'bridge': trezor_defs.BridgeTransport,`
			`}.get(os.environ.get('TREZOR_TRANSPORT'), trezor_defs.HidTransport)`
device: import device-specific `defs` module lazily It may fail on unsupported platforms (e.g. keepkeylib does not supoprt Python 3) 2016-12-27 10:34:07 +00:00			`return trezor_defs`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00
			`required_version = '>=1.4.0'`
device: set passphrase from environment 2017-01-06 10:44:58 +00:00			`passphrase = os.environ.get('TREZOR_PASSPHRASE', '')`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00
			`def connect(self):`
			`"""Enumerate and connect to the first USB HID interface."""`
device: allow non-empty passphrases 2017-01-06 09:59:57 +00:00			`def passphrase_handler(_):`
device: set passphrase from environment 2017-01-06 10:44:58 +00:00			`log.debug('using %s passphrase for %s',`
			`'non-empty' if self.passphrase else 'empty', self)`
device: allow non-empty passphrases 2017-01-06 09:59:57 +00:00			`return self._defs.PassphraseAck(passphrase=self.passphrase)`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00
device: allow Qt-based PIN entry for Trezor/Keepkey 2017-05-21 14:29:57 +00:00			`def create_pin_handler(conn):`
ssh: close stdin when running subshell 2017-08-31 14:00:27 +00:00			`if not sys.stdin.closed and os.isatty(sys.stdin.fileno()):`
device: allow Qt-based PIN entry for Trezor/Keepkey 2017-05-21 14:29:57 +00:00			`return conn.callback_PinMatrixRequest # CLI-based PIN handler`

			`def qt_handler(_):`
pin: use PyQt only when running with no TTY 2017-05-21 18:03:04 +00:00			`# pylint: disable=import-error`
			`from PyQt5.QtWidgets import QApplication, QInputDialog, QLineEdit`
device: allow Qt-based PIN entry for Trezor/Keepkey 2017-05-21 14:29:57 +00:00			`label = ('Use the numeric keypad to describe number positions.\n'`
			`'The layout is:\n'`
			`' 7 8 9\n'`
			`' 4 5 6\n'`
			`' 1 2 3\n'`
			`'Please enter PIN:')`
			`app = QApplication([])`
			`qd = QInputDialog()`
			`qd.setTextEchoMode(QLineEdit.Password)`
			`qd.setLabelText(label)`
			`qd.show()`
			`app.exec_()`
			`return self._defs.PinMatrixAck(pin=qd.textValue())`

			`return qt_handler`

Allow using TREZOR bridge (instead of HID transport) 2017-04-21 18:25:46 +00:00			`for d in self._defs.Transport.enumerate():`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`log.debug('endpoint: %s', d)`
Allow using TREZOR bridge (instead of HID transport) 2017-04-21 18:25:46 +00:00			`transport = self._defs.Transport(d)`
device: import device-specific `defs` module lazily It may fail on unsupported platforms (e.g. keepkeylib does not supoprt Python 3) 2016-12-27 10:34:07 +00:00			`connection = self._defs.Client(transport)`
device: allow non-empty passphrases 2017-01-06 09:59:57 +00:00			`connection.callback_PassphraseRequest = passphrase_handler`
device: allow Qt-based PIN entry for Trezor/Keepkey 2017-05-21 14:29:57 +00:00			`connection.callback_PinMatrixRequest = create_pin_handler(connection)`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`f = connection.features`
			`log.debug('connected to %s %s', self, f.device_id)`
			`log.debug('label : %s', f.label)`
			`log.debug('vendor : %s', f.vendor)`
			`current_version = '{}.{}.{}'.format(f.major_version,`
			`f.minor_version,`
			`f.patch_version)`
			`log.debug('version : %s', current_version)`
			`log.debug('revision : %s', binascii.hexlify(f.revision))`
			`if not semver.match(current_version, self.required_version):`
			`fmt = ('Please upgrade your {} firmware to {} version'`
			`' (current: {})')`
			`raise ValueError(fmt.format(self, self.required_version,`
			`current_version))`
			`connection.ping(msg='', pin_protection=True) # unlock PIN`
			`return connection`
			`raise interface.NotFoundError('{} not connected'.format(self))`

			`def close(self):`
			`"""Close connection."""`
			`self.conn.close()`

device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`def pubkey(self, identity, ecdh=False):`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`"""Return public key."""`
device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`curve_name = identity.get_curve_name(ecdh=ecdh)`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`log.debug('"%s" getting public key (%s) from %s',`
gpg: fix identity stringification 2017-10-07 16:18:58 +00:00			`identity.to_string(), curve_name, self)`
device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`addr = identity.get_bip32_address(ecdh=ecdh)`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`result = self.conn.get_public_node(n=addr,`
			`ecdsa_curve_name=curve_name)`
			`log.debug('result: %s', result)`
			`return result.node.public_key`

device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`def _identity_proto(self, identity):`
device: import device-specific `defs` module lazily It may fail on unsupported platforms (e.g. keepkeylib does not supoprt Python 3) 2016-12-27 10:34:07 +00:00			`result = self._defs.IdentityType()`
device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`for name, value in identity.items():`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`setattr(result, name, value)`
			`return result`

device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`def sign(self, identity, blob):`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`"""Sign given blob and return the signature (as bytes)."""`
device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`curve_name = identity.get_curve_name(ecdh=False)`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`log.debug('"%s" signing %r (%s) on %s',`
gpg: fix identity stringification 2017-10-07 16:18:58 +00:00			`identity.to_string(), blob, curve_name, self)`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`try:`
			`result = self.conn.sign_identity(`
device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`identity=self._identity_proto(identity),`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`challenge_hidden=blob,`
			`challenge_visual='',`
			`ecdsa_curve_name=curve_name)`
			`log.debug('result: %s', result)`
			`assert len(result.signature) == 65`
			`assert result.signature[:1] == b'\x00'`
			`return result.signature[1:]`
tox: order imports 2017-01-06 10:37:14 +00:00			`except self._defs.Error as e:`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`msg = '{} error: {}'.format(self, e)`
			`log.debug(msg, exc_info=True)`
			`raise interface.DeviceError(msg)`

device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`def ecdh(self, identity, pubkey):`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`"""Get shared session key using Elliptic Curve Diffie-Hellman."""`
device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`curve_name = identity.get_curve_name(ecdh=True)`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`log.debug('"%s" shared session key (%s) for %r from %s',`
gpg: fix identity stringification 2017-10-07 16:18:58 +00:00			`identity.to_string(), curve_name, pubkey, self)`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`try:`
			`result = self.conn.get_ecdh_session_key(`
device: allow loading identities from a file (instead of argument) 2016-11-03 18:19:24 +00:00			`identity=self._identity_proto(identity),`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`peer_public_key=pubkey,`
			`ecdsa_curve_name=curve_name)`
			`log.debug('result: %s', result)`
			`assert len(result.session_key) in {65, 33} # NIST256 or Curve25519`
			`assert result.session_key[:1] == b'\x04'`
			`return result.session_key`
tox: order imports 2017-01-06 10:37:14 +00:00			`except self._defs.Error as e:`
device: move device-related code into a separate package 2016-10-26 19:38:35 +00:00			`msg = '{} error: {}'.format(self, e)`
			`log.debug(msg, exc_info=True)`
			`raise interface.DeviceError(msg)`